New ISACA program assists with AWS audits


Monday, 06 May, 2019
New ISACA program assists with AWS audits

ISACA has launched a new audit program to support IT auditors in their assessments of Amazon Web Services (AWS) deployments.

The use of cloud services is widespread, and expected to only continue to increase — by 2020, it is estimated that 41% of enterprise workloads will be hosted on public cloud platforms.

While AWS has the ability to help teams become more agile, without proper knowledge of AWS configurations and potential hazards, enterprises may also open themselves to new risks.

ISACA’s new audit program, Amazon Web Services (AWS ) Audit Program, is designed to offer support with access to the AWS environment, as well as management and interrelationships of AWS services. The program covers AWS applications, functions and containers, and across the domains of governance, network configuration and management, asset configuration and management, logical access control, data encryption controls, logging and event management, security incident response and disaster recovery.

IT audit professionals can follow detailed testing steps outlined for controls across these domains in this audit program spreadsheet to assist in their auditing process, but they are encouraged to customise the document for their unique enterprise needs. The program is free to members, and $25 for non-members.

“ISACA’s AWS Audit Program provides IT audit professionals with the essentials for grasping the breadth and depth of AWS deployments as well as to provide them with a solid foundation for building their own customised audit program around these services,” said Adam Kohnke, CISA, CISSP, Senior IT Auditor for Total Administrative Services Corporation, and lead developer of the AWS Audit Program.

Kohnke elaborates on the topic in his ISACA Journal article, ‘Auditing Amazon Web Services’, published 1 May, which is available to members. In this feature, Kohnke covers the audit elements related to the eight domains covered in the audit program, while also providing a helpful overview of current AWS service offerings organised by category.

To download the Amazon Web Services (AWS) Audit Program, click here.

Image credit: ©stock.adobe.com/au/kentoh

Please follow us and share on Twitter and Facebook. You can also subscribe for FREE to our weekly newsletter and quarterly magazine.

Related News

Boomi forms AI partnership with Red Hat

Boomi and Red Hat are collaborating with the goal of making it easier for enterprise customers to...

Kyndryl unveils IT risk detection tool

Kyndryl has upgraded its Kyndryl Bridge AI-powered open integration platform with the ability to...

Databricks to invest $420m into ANZ region

Data and AI company Databricks will expand into a large office in the Sydney CBD as part of a...

Content from other channels on our network

HPE unveils more autonomous networking capabilities

When size does matter

NSW Police unsuccessful in technology upgrades: report

Digital Health Agency launches digital health safety course

Charting Australia's path from ambition to regional AI powerhouse

Motorola Solutions expands Silvus Technologies production capacity

Tait Communications expands its DMR solutions range

New ETSI standard strengthens emergency comms interoperability

NSW Police unsuccessful in technology upgrades: report

Where industry meets: RFUANZ and Comms Connect 2026

igus develops innovative energy chain for cleanrooms

3D-printed copper plate could transform data centre cooling

Comau and Omron Robotics to expand industrial automation solutions

Chiral semiconductors that can absorb visible light

Phonon generator could lead to sound-based lasers

  • All content Copyright © 2026 Westwick-Farrow Pty Ltd